Security

At Rainbook, your trust is our number one priority.
Earning and retaining that trust starts with our privacy policy and extends to protecting your data through bank-level encryption and protocols.

Data Security

AES-256 Encryption by default, at rest and in transit.

We secure all data with Google Cloud infrastructure. This stack builds security through progressive layers that deliver true defense in depth. Hardware infrastructure is Google-controlled, -secured, and -hardened.

Identity Verificiation

Two-factor authentication to verify identity.

We require two-factor authentication (2FA) before you link an account. With 2FA, you protect your Rainbook account with something you know (your password) and something you have (your phone), adding an extra layer of security. Your phone number is only used for verification and login.

Read-Only Interface

Non-transactional, meaning no transactions are made on Rainbook.

Our partners provide read-only access to your accounts, allowing balances and holdings to be updated regularly while no transactions are allowed to be conducted through Rainbook.

Privacy Practices

We will never sell your data. We will never sell your personal information. Simple as that.

No external account credentials are stored at Rainbook. Account credentials are sent directly from your browser to Morningstar, Plaid or your financial institution. In addition, strict internal controls ensure that our support team can only see data required for customer support.